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On Cornacchia’s Algorithm 


Yoichi Motohashi 

Abstract: We give an endorsement for Cornacchia’s famous algorithm. Thus we do not claim 
anything new but an approach which is supposed to be simpler than those of previous works written 
with the same aim. All variables and constants are integers. 
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1. Introduction 

We consider the Diophantine equation 

+ dy^ = m, (1.1) 

where 

d>2, TO > 2, gcd{(i, to} = 1. (1.2) 

We observe that provided (1.1) admits a proper solution {u,u}, namely 

u'^ + dv'^ = m, gcd{u,u} = l, (1.3) 

it holds that 

gcd{uu,TO} = l, uv^O, m>d+l-, (1.4) 

and that —d is a quadratic residue mod to, and there exists & w,m/2<w<m, such that 

w^ = —dmodm. (1-5) 

In fact one may put w = uv~^ mod to, vv~^ = 1 mod to. 

We apply the antenaresis to the pair {w,m} and denote by {tj} the residues thus arising. 
Also we expand w/m into a regular continued fraction and get the convergents {Cj/Dj}. An 
explanation of these notions is to be given in the next section. 

With this, Cornacchia (1908, pp. 60-66) essentially stated the following: 

Theorem. 

Let V be such that 

tl+i <m<tl. (1.6) 

Then (1.3) implies that 

|it|=t^+i, \v\=D^. (1.7) 

Algorithm. 

Solely on the assumption (1.5), that is, without any prior knowledge of (1-3), find v that satisfies 
(1.6). If it holds that + dD^ = m, then this is a proper solution of (1.1) corresponding to w. 
Otherwise (1.1) does not admit any proper solution corresponding to w. 

Obviously, if (1.5) is empty, then there is no need to make any further quest as far as proper 
solutions are concerned; but see the second example in the last section. We shall give, in the third 
section, a proof of the theorem and algorithm using a basic observation on the nature of finite 
continued fractions, which is in fact contained in the best approximation theorem of Lagrange 
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(1798, pp. 55-57) but can be proved quickly with an idea of Legendre (1798, p. 27). Also, we 
partly follow Basilla (2004). The case d = 1 will be treated in the fourth section. 

Acknowledgements: We are indebted to Professor Francesco Pappalardi who kindly provided us 
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2. Finite continued fractions 

Let b > 2 and expand any fraction a/b into the continued fraction 

1 1 1 

9o H-— —, 

9l + 92 + ■ • • + 

which means that the antenaresis applied to {a, 6} yields the sequence of identities 

rj_i = qjrj + Vj+i, 0 < rj+i <rj, 0 < j < k, 


( 2 . 1 ) 


( 2 . 2 ) 


with the convention r_i = a, ro = 6, r^+i = 0; in particular rt = gcdja, b}. One may put this, in 
the matrix multiplication format, as 


(0-i>0) = (0>0+i) o)’ 


Writing, for — 1 < j < fc. 


M. 


( 90 

1^ 

\ ( 91 


Bj-i) 

“Vi 

Oy 


o' 

II 

1 

B-2 = 1; 

A_i 

= 1, 

B-i = 


qj 1 
1 0 


where an empty product is the unit matrix, we have, by induction, 

A,- 1 1 1 

^ = 90 + —, — , , 0<9<fc, 

Bj 9i + 92 + • • • + qj 

-l<3< k. 


Thus, we have 


J) (V o)'"(* o) 




in which a use is made of the fact that J) are symmetric. Hence, we get 

(0>0+i) = i-y^~\a,b) 


Aj I 


(2.3) 


(2.4) 

(2.5) 


( 2 . 6 ) 

(2.7) 


( 2 . 8 ) 


(2.9) 


Lemma. 

If it holds, with a particular X, — 1 < A < fc, that 


\aQ - bP\ <rx, 0, 


( 2 . 10 ) 
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then we have 

Bx<\Q\. 


( 2 . 11 ) 


Proof. Obviously we may skip the cases A = —1,0; we assume 1 < A < /c. Following Legendre 
loc.cit., we introduce the transformation of variables 


P = MAx - NAx-u Q = MBx - NBx-i; 


( 2 . 12 ) 


namely 


M = {-l)\QAx-i - PBx-i), N = (-l)^(g^A - PBx). 


We have, via (2.9), 


aQ — bP = M{aBx — bAx) — N{aBx-i — bAx-i) 
= i-l)\Mrx+i+Nrx). 


(2.13) 


(2.14) 


If MN > 0, then \aQ — bP\ = |M|rA+i + \N\rx > rx, which is rejected by the assumption (2.10). 
If M = 0, then (2.13) implies Q = tBx-i, P = tAx-i with a t ^ 0, since gcd{Bj, Aj} = 1 by 
(2.7); hence, via (2.9), we get \aQ — bP\ = |r|rA > ta, which contradicts (2.10). Therefore, we may 
suppose that MN < 0, M 0, and find that (2.12) implies |g| = \M\Bx + |lV|i3A-i > Bx- We 
end the proof. 


3. Proof of Cornacchia’s theorem and algorithm 

We specialize the discussion of the previous section by setting a = w, b = m, rj = tj, Aj = Cj, 
Bj = Dj. By definition, to = m, ti = w, tk = 1; thus there exists a unique v that satisfies (1.6). 
On the other hand, (2.9) gives that tj+i = {—iy{wDj — mCj) and 

t^j+i + dD^ = (w^ + d)Dj = 0 mod m, —1 < j < k. (3.1) 

Also, we have u = vw — £m with an £; and by the lemma with P = £, Q = v we see that 

for any A such that |u| < tv, — 1 < A < k, , , 

we have Dx < |u|, that is, dDf < m. 

In particular, since |m| < x/m < g, we have t^+i + dD^ < 2mDHence by the congruence relation 
(3.1)j=,y, we find that 

+ dDl = TO. (3.3) 

If |u| > g+i, then m = vf + dv"^ > + dDl = to, which is impossible. If |m| < t,y+i, then in 

much the same way as above we get t ^_|_2 + = m; and 

m? = \tv+i + iDi,'/d'\^\tv+2 + iDi,+i'/d'\^ 

= (g+ig+2 — dD^D^+iY + d{ti,+iD^+i + t^^2Di,y, (3-4) 

which is impossible, since d > 2 and to = + t^j^ 2 Di, by (2.8)j=,y+i. Hence, (1.7) is 

verified. We end the proof of the theorem. 

As to the validity of the algorithm, it suffices to show that the identity (3.3), if it holds on its 
own, implies that gcd{t,y+i, = 1. To see this, we put + d = hm, and get, via (2.9)j=,y, 


+ dD^ = m{hD^ — 2wC,yD^ + mC'^). 


( 3 . 5 ) 
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Namely, [hD^ — 2wC^)Di, + mCl = 1. Hence gcd{-Dy, m} = 1, and gcd{t,y+i, Di/} = 1. This ends 
the endorsement of Cornacchia’s algorithm. 


4. Remarks and examples 

Remark 1: When d = 1 we follow the argument of Hermite (1848). Thus we assume only that 
there exists a. w, m/2 < w < m, such that 

= —1 mod to; (4-1) 


Dl<m< Dl^^. 


and we adopt the specialization at the beginning of the last section. Then we choose fx to satisfy 

(4.2) 

This is possible because {Dj} increase monotonically from 1 to to. We note that, for 1 < j <k, 

w Cj-i 


TO D 




< 


1 


or tj < m/Dj, 


(4.3) 


since by the construction w/m is between Cj-i/Dj-i and Cj/Dj, and we have (2.7) and (2.9). 
Hence we see that and < 2m. The congruence relation (3.1) holds when 

d = 1, as well; and it implies 

(4.4) 


Wi + 


Df. = TO. 


As in the case d > 2, this is a proper solution of (l.l)d=i. 

Then we assume that we have a proper solution (1.3)^=1. We observe that 

vD^ - ut^+i = vD^ - = (1 + mod to, 

- vt^+i = uD^ - {-lYvwD^ = (1 - mod to. 


(4.5) 


one of which is congruent to 0 mod to. Let us assume — ut^+i = 0 mod to. Then we note that 

{vDf, - + {uDf, + = |m + (4-6) 

This implies that either (vH^ —= 0 or = to^; and if the latter holds, then (■uH^ + ut^+i)^ = 
0. Since gcdlu,?;} = 1 and gcd{t^+i, = 1, we conclude that 


either |m| = D^, |r;| = or |m| = t^+i, |n| = D^. (4.7) 

With the remaining case, i.e., uD^ — vt^+i = 0 mod to, we use instead \u — iv\'^\t+iDY\^ = to^, 
getting (4.7) again. 

It should be stressed that in the case d = 1 we do not need to have (1.3); it suffices to have 
(1.5)d=i or (4.1). However, we should first choose instead of t^+i. 

Remark 2'. It is worth remarking that Smith (1855) showed that when dealing with to a prime 
= 1 mod 4 the condition (1.5)ci=i is not needed to be assumed as far as one is concerned with only 
the existence of the representation (1.3)^=1. He exploited the fact that there exists a fraction m/h, 
2 < h < m/2, whose continued fraction expansion is palindromic. 

Remark 3: An effective way to adopt prior to any use of Cornacchia’s algorithm is to restrict 
oneself to the cases of to being square-free and prime powers. Then in the general case the identity 
\x + iyVdl'^ = + dy'^ is to be exploited. It is important not to restrict oneself to prime powers 
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only, since the product of primes, none of which has the representation (1.3), may admit the 
representation. An example is given below. 

Example 1 : We consider the situation d = 5 and m = 435629. Since 2™“^ ^ 1 mod m, we see 
that m is a composite number. The p method of Pollard, for instance, gives the decomposition 
m = P 1 P 2 , with primes pi = 367, p 2 = 1187. Since pi,P 2 = 7 mod 20, they are not expressible by 
the quadratic form + 5?/^, but the product m = P1P2 does admit a proper representation by 
the form, according to a well-known criterion which can be traced back to Fermat (1658: 1894, 
p. 405). Let us confirm this by Cornacchia’s algorithm. Following Lagrange (1768, p. 500), we 
put wi = ±(—5)(p'+i)/ 4 modp;, / = 1,2; namely Wi = ±27 modpi, W 2 = ±282 mod ^ 2 - Then 
vJf = —5 mod Pi. Checking that 


367 _ ^ 1 1 1 1 1 1 1 


207-367- 64- 1187 = 1, 


(4.7) 


we have that w = 207 • 367 • W 2 — 64 • 1187 • Wi mod m satisfies = —5 mod m, or w = 
231183, 386057. Then the algorithm yields the solutions ± 5Dl = m with 


w = 231183 : = 1385, = 228, = 277, 

w = 386057 : U = 1450, U+i = 123, = 290. 


(4.8) 


Further, as to the equation ± 5t/^ = p\, we use the Schonemann-Hensel lifting, and from 
27 mod Pi obtain ru* = 109760, wl = —5 modpf. The antenaresis applied to the pair {■u;*,Pi} 
yields 362^±5-27^ = p^DWith this, we exploit (362±27-\/5i)(228 —277-\/5i), and find the following 
proper representation of p\p 2 '■ 


119931^ ± 5 • 94118^ = 58674434381. (4.9) 

The other combination (362 ± 27-\/5i)(228 ± 277-\/5*) does not lead to a proper representation, a 
phenomenon which can be explained by a use of the theory of ideals in Q(-\/—5). 

Example 2: Consider ± 7p^ = 4p where p = 9241 is a prime. This equation does not have any 
proper solution, since if x,y are both odd, then x^ ± ly^ = 0 mod 8, and if there is a solution, 
then cc, y are both even. Thus, Cornacchia’s algorithm should not work with this situation, even 
though we have (1.5), that is, = —7 mod 4p, w = 24899. Applying the antenaresis to the pair 
{r(;,4p}, we find that <i/+i = 52, 71^ = 144, and + 7Dl ^ 4p indeed. Hence, one should 
follow the prescription indicated in the third remark above. We have 6417^ = —7 modp, and the 
algorithm gives = 13, = 36, and 13^ ± 7 • 36^ = p, which yields the improper solution 

26^ ± 7 • 72^ = 4p. By the way, the quadratic residue 6417 modp is readily obtained with the 
algorithm of Tonelli (1891). 
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